Open Energy in Production

The Open Energy Playground is great to get started fast with prototyping and experimenting.

But it is also made to be used out in the real world! What is sometimes also called production.

This page is a collections of thoughts and recommendations regarding Open Energy in production. Though we try to keep the list updated, it should not be regarded as a complete list of everything you need to do to secure your production environment.

This page is targeted to more experienced developers and power users, and assumes that you have the playground running on a linux server.

Port exposure

By default, the playground exposes a number of ports to the wild dangerous internet. This should be reconfigured so that the containers can still access each other, but they cannot be reached from the outside.

To do this, in docker-compose.yml, change ports to expose. For example, you might not want to expose the influxDB web admin port. Change it from:

ports:
- "8083:8083"

To:

expose:
- 8083

Enabling authentication

InfluxDB

InfluxDB has authentication turned off by default. Either you can stop exposing the port and only access it from behind a firewall, or you can enable authentication.